Term · 5. Authorization & Access Models
Access Subject
Definition
Access Subject — a person or process whose actions are regulated by access control rules to information system objects. Includes user accounts (UserType in MidPoint), technical/service accounts (NHI), processes, and other software entities initiating operations.
Related terms
-
Access Object
Access Object — a unit of an information resource for which access is regulated by access control rules. May be a file, …
-
Forrester Zero Trust (originator framework) (ZTX)
Originated by Forrester analyst John Kindervag in 2010 as «No more chewy centers — abolish the trusted network», Zero Tr …
-
NIST RBAC
NIST RBAC Standard — INCITS 359-2012 (Role-Based Access Control). Defines four RBAC variants: Flat RBAC (basic roles+use …
-
AuthZEN
OpenID Foundation working group standardising a uniform API for authorization decisions across heterogeneous Policy Deci …
-
Policy Administration Point (PAP)
A Policy Administration Point (PAP) is the system entity in XACML/ABAC architectures that creates and manages authorizat …
-
Policy Information Point (PIP)
A Policy Information Point (PIP) is an access control component that acts as the retrieval source for attributes and oth …